EUVD-2015-8276

Malware in sbrugna...

SUSE-SU-2021:3529-1 Security update for pcre

This update for pcre fixes the following issues: Update pcre to version 8.45: - CVE-2020-14155: Fixed integer overflow via a large number after a '?C' substring bsc1172974. - CVE-2019-20838: Fixed buffer over-read in JIT compiler bsc1172973...

CVE-2020-14155

libpcre in PCRE before 8.44 allows an integer overflow via a large number after a ?C substring...

PCRE Denial of Service Vulnerability (CNVD-2016-00094)

PCRE is a software developer Philip Hazel developed by the use of C language written in open source regular expression library . A security vulnerability exists in the 'pcrecompile2' function in the pcrecompile.c file in PCRE version 8.38. A remote attacker can exploit this vulnerability to cause...

CVE-2015-8389

PCRE before 8.38 mishandles the /?:|a|100x/ pattern and related patterns, which allows remote attackers to cause a denial of service infinite recursion or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konquero...

Buffer overflow

PCRE before 8.38 mishandles the /?|\k'Pm'|?'Pm'/ pattern and related patterns with certain forward references, which allows remote attackers to cause a denial of service buffer overflow or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript...

CVE-2015-8389

PCRE before 8.38 mishandles the /?:|a|100x/ pattern and related patterns, which allows remote attackers to cause a denial of service infinite recursion or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konquero...

pcre: buffer overflow

Several buffer overflows have been found in pcre = 8.37. By compiling a crafted regular expression, it is possible to write more than the expected size into various buffers, allowing arbitrary code execution...